<!DOCTYPE html>
<html lang="zh-CN">
<head>
  <meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=2">
<meta name="theme-color" content="#222">
<meta name="generator" content="Hexo 4.2.0">
  <link rel="apple-touch-icon" sizes="180x180" href="/images/apple-touch-icon-next.png">
  <link rel="icon" type="image/png" sizes="32x32" href="/images/favicon-32x32-next.png">
  <link rel="icon" type="image/png" sizes="16x16" href="/images/favicon-16x16-next.png">
  <link rel="mask-icon" href="/images/logo.svg" color="#222">

<link rel="stylesheet" href="/css/main.css">


<link rel="stylesheet" href="/lib/font-awesome/css/font-awesome.min.css">

<script id="hexo-configurations">
    var NexT = window.NexT || {};
    var CONFIG = {"hostname":"yoursite.com","root":"/","scheme":"Muse","version":"7.7.1","exturl":false,"sidebar":{"position":"left","display":"post","padding":18,"offset":12,"onmobile":false},"copycode":{"enable":false,"show_result":false,"style":null},"back2top":{"enable":true,"sidebar":false,"scrollpercent":false},"bookmark":{"enable":false,"color":"#222","save":"auto"},"fancybox":false,"mediumzoom":false,"lazyload":false,"pangu":false,"comments":{"style":"tabs","active":null,"storage":true,"lazyload":false,"nav":null},"algolia":{"hits":{"per_page":10},"labels":{"input_placeholder":"Search for Posts","hits_empty":"We didn't find any results for the search: ${query}","hits_stats":"${hits} results found in ${time} ms"}},"localsearch":{"enable":false,"trigger":"auto","top_n_per_article":1,"unescape":false,"preload":false},"motion":{"enable":true,"async":false,"transition":{"post_block":"fadeIn","post_header":"slideDownIn","post_body":"slideDownIn","coll_header":"slideLeftIn","sidebar":"slideUpIn"}}};
  </script>

  <meta name="description" content="隐写术（隐藏书写的信息的技术，隐写术属于信息隐藏技术当中的一种，旨在保护秘密信息的安全传输。） 信息隐藏技术：隐写术 ——主要应用于通信数字水印——主要应用于产权保护隐蔽信道阀下信道匿名通信…… 隐写术应用场景Simmons模型—囚犯问题 密码学与隐写术密码学：试图通过对信息加密的方式，使信息变得无意义，继而使他人无法获得真正的信息。隐写术：试图隐藏通信事件本身。目的相同：都是为了针对第三方。隐蔽">
<meta property="og:type" content="article">
<meta property="og:title" content="隐写术">
<meta property="og:url" content="http://yoursite.com/2020/02/18/%E9%9A%90%E5%86%99%E6%9C%AF/index.html">
<meta property="og:site_name" content="tender healer">
<meta property="og:description" content="隐写术（隐藏书写的信息的技术，隐写术属于信息隐藏技术当中的一种，旨在保护秘密信息的安全传输。） 信息隐藏技术：隐写术 ——主要应用于通信数字水印——主要应用于产权保护隐蔽信道阀下信道匿名通信…… 隐写术应用场景Simmons模型—囚犯问题 密码学与隐写术密码学：试图通过对信息加密的方式，使信息变得无意义，继而使他人无法获得真正的信息。隐写术：试图隐藏通信事件本身。目的相同：都是为了针对第三方。隐蔽">
<meta property="og:locale" content="zh_CN">
<meta property="og:image" content="http://yoursite.com/2020/02/18/%E9%9A%90%E5%86%99%E6%9C%AF/1582033158920.png">
<meta property="og:image" content="http://yoursite.com/2020/02/18/%E9%9A%90%E5%86%99%E6%9C%AF/1582033534324.png">
<meta property="og:image" content="http://yoursite.com/2020/02/18/%E9%9A%90%E5%86%99%E6%9C%AF/1582034022602.png">
<meta property="article:published_time" content="2020-02-18T15:05:27.002Z">
<meta property="article:modified_time" content="2020-02-19T08:57:16.418Z">
<meta property="article:author" content="YQ Cong">
<meta name="twitter:card" content="summary">
<meta name="twitter:image" content="http://yoursite.com/2020/02/18/%E9%9A%90%E5%86%99%E6%9C%AF/1582033158920.png">

<link rel="canonical" href="http://yoursite.com/2020/02/18/%E9%9A%90%E5%86%99%E6%9C%AF/">


<script id="page-configurations">
  // https://hexo.io/docs/variables.html
  CONFIG.page = {
    sidebar: "",
    isHome: false,
    isPost: true
  };
</script>

  <title>隐写术 | tender healer</title>
  






  <noscript>
  <style>
  .use-motion .brand,
  .use-motion .menu-item,
  .sidebar-inner,
  .use-motion .post-block,
  .use-motion .pagination,
  .use-motion .comments,
  .use-motion .post-header,
  .use-motion .post-body,
  .use-motion .collection-header { opacity: initial; }

  .use-motion .site-title,
  .use-motion .site-subtitle {
    opacity: initial;
    top: initial;
  }

  .use-motion .logo-line-before i { left: initial; }
  .use-motion .logo-line-after i { right: initial; }
  </style>
</noscript>

</head>

<body itemscope itemtype="http://schema.org/WebPage">
  <div class="container use-motion">
    <div class="headband"></div>

    <header class="header" itemscope itemtype="http://schema.org/WPHeader">
      <div class="header-inner"><div class="site-brand-container">
  <div class="site-meta">

    <div>
      <a href="/" class="brand" rel="start">
        <span class="logo-line-before"><i></i></span>
        <span class="site-title">tender healer</span>
        <span class="logo-line-after"><i></i></span>
      </a>
    </div>
        <p class="site-subtitle">Recording learning gains</p>
  </div>

  <div class="site-nav-toggle">
    <div class="toggle" aria-label="切换导航栏">
      <span class="toggle-line toggle-line-first"></span>
      <span class="toggle-line toggle-line-middle"></span>
      <span class="toggle-line toggle-line-last"></span>
    </div>
  </div>
</div>


<nav class="site-nav">
  
  <ul id="menu" class="menu">
        <li class="menu-item menu-item-home">

    <a href="/" rel="section"><i class="fa fa-fw fa-home"></i>首页</a>

  </li>
        <li class="menu-item menu-item-archives">

    <a href="/archives/" rel="section"><i class="fa fa-fw fa-archive"></i>归档</a>

  </li>
  </ul>

</nav>
</div>
    </header>

    
  <div class="back-to-top">
    <i class="fa fa-arrow-up"></i>
    <span>0%</span>
  </div>


    <main class="main">
      <div class="main-inner">
        <div class="content-wrap">
          

          <div class="content">
            

  <div class="posts-expand">
      
  
  
  <article itemscope itemtype="http://schema.org/Article" class="post-block " lang="zh-CN">
    <link itemprop="mainEntityOfPage" href="http://yoursite.com/2020/02/18/%E9%9A%90%E5%86%99%E6%9C%AF/">

    <span hidden itemprop="author" itemscope itemtype="http://schema.org/Person">
      <meta itemprop="image" content="/images/avatar.gif">
      <meta itemprop="name" content="YQ Cong">
      <meta itemprop="description" content="">
    </span>

    <span hidden itemprop="publisher" itemscope itemtype="http://schema.org/Organization">
      <meta itemprop="name" content="tender healer">
    </span>
      <header class="post-header">
        <h1 class="post-title" itemprop="name headline">
          隐写术
        </h1>

        <div class="post-meta">
            <span class="post-meta-item">
              <span class="post-meta-item-icon">
                <i class="fa fa-calendar-o"></i>
              </span>
              <span class="post-meta-item-text">发表于</span>

              <time title="创建时间：2020-02-18 23:05:27" itemprop="dateCreated datePublished" datetime="2020-02-18T23:05:27+08:00">2020-02-18</time>
            </span>
              <span class="post-meta-item">
                <span class="post-meta-item-icon">
                  <i class="fa fa-calendar-check-o"></i>
                </span>
                <span class="post-meta-item-text">更新于</span>
                <time title="修改时间：2020-02-19 16:57:16" itemprop="dateModified" datetime="2020-02-19T16:57:16+08:00">2020-02-19</time>
              </span>

          

        </div>
      </header>

    
    
    
    <div class="post-body" itemprop="articleBody">

      
        <h1 id="隐写术"><a href="#隐写术" class="headerlink" title="隐写术"></a>隐写术</h1><p>（隐藏书写的信息的技术，隐写术属于<strong>信息隐藏技术</strong>当中的一种，旨在保护秘密信息的安全传输。）</p>
<h2 id="信息隐藏技术："><a href="#信息隐藏技术：" class="headerlink" title="信息隐藏技术："></a>信息隐藏技术：</h2><p>隐写术 ——主要应用于通信<br>数字水印——主要应用于产权保护<br>隐蔽信道<br>阀下信道<br>匿名通信<br>……</p>
<h2 id="隐写术应用场景"><a href="#隐写术应用场景" class="headerlink" title="隐写术应用场景"></a>隐写术应用场景</h2><p>Simmons模型—囚犯问题</p>
<h2 id="密码学与隐写术"><a href="#密码学与隐写术" class="headerlink" title="密码学与隐写术"></a>密码学与隐写术</h2><p>密码学：试图通过对信息加密的方式，使信息变得无意义，继而使他人无法获得真正的信息。<br>隐写术：试图隐藏通信事件本身。<br>目的相同：都是为了针对第三方。<br>隐蔽性：（总体上）隐写&gt;加密<br>加密后的文本通常为无意义文本，较易察觉（当然也存在诸如培根密码等密文为有意义文本的加密方式）<br>安全性：（总体上）加密&gt;隐写<br>隐写方式或算法一旦被识别，通常也就取得信息了，但是加密通常即使知道算法也无法解出明文（不考虑碰撞）</p>
<p><img src="/2020/02/18/%E9%9A%90%E5%86%99%E6%9C%AF/1582033158920.png" alt="png"></p>
<h2 id="评价隐写术的标准"><a href="#评价隐写术的标准" class="headerlink" title="评价隐写术的标准"></a>评价隐写术的标准</h2><ul>
<li>核心标准：<strong>隐蔽程度</strong>（隐蔽程度越高，直接导致检测有效信息越困难）</li>
<li>其他标准：<ul>
<li>隐写算法的好坏</li>
<li>隐写手段的复杂度</li>
<li>提取信息的难易度<h2 id="隐写术分类"><a href="#隐写术分类" class="headerlink" title="隐写术分类"></a>隐写术分类</h2></li>
</ul>
</li>
</ul>
<p><img src="/2020/02/18/%E9%9A%90%E5%86%99%E6%9C%AF/1582033534324.png" alt="png"></p>
<p>现代数字隐写四大载体：</p>
<ul>
<li>文本：字体、空格、标点、行间距</li>
<li>图像：各类图片格式特征（png、jpg、bmp）</li>
<li>音频：mp3 stego、波形图、频谱图</li>
<li>视频：压缩视频、未压缩视频<h2 id="CTF竞赛中的隐写术概述"><a href="#CTF竞赛中的隐写术概述" class="headerlink" title="CTF竞赛中的隐写术概述"></a>CTF竞赛中的隐写术概述</h2>（主要以视频题、音频题为主）<ul>
<li>隐写套路较为固定</li>
</ul>
</li>
</ul>
<ul>
<li><p>比赛工具较为成熟</p>
<p><img src="/2020/02/18/%E9%9A%90%E5%86%99%E6%9C%AF/1582034022602.png" alt="png"></p>
</li>
<li><p>好处：通常题目难度较低，即使没有解题思路，依次尝试各个解法往往也能在没发现提示的情况下找出问题所在</p>
</li>
<li><p>坏处：容易形成思维定势，一旦题目考察方式不常规，往往容易无从下手，不知道从哪开始去分析，失去独立发现问题和思考的能力。</p>
</li>
<li><p>通常作为MISC类题目的一个考察方向（这里MISC泛指Misc&amp;Steganography&amp;forensic&amp;Crypto)<br>因为不作为单独分类，因此隐写术通常只是一道Misc题中的一部分，与其他考察方向共同构成一道完整的Misc题</p>
</li>
<li><p>在国外CTF比赛中以计算机取证（Forensics)类的题目出现。</p>
<h3 id="CTF比赛中的典型隐写分析工具"><a href="#CTF比赛中的典型隐写分析工具" class="headerlink" title="CTF比赛中的典型隐写分析工具"></a>CTF比赛中的典型隐写分析工具</h3><h4 id="Binwalk"><a href="#Binwalk" class="headerlink" title="Binwalk"></a>Binwalk</h4><p>固件分析工具，常用作路由器逆向、后门分析，或识别二进制图像中的嵌入式文件和可执行代码<br>命令：<strong>binwalk 文件名</strong><br>常用参数：<br>+<strong>-e</strong>：按照预定义的配置文件来提取（extract.conf),通常是提取rar</p>
<ul>
<li><strong>–d=xxx</strong>：提取某种类型的文件，xxx为文件类型（比如–dd=png）</li>
<li><strong>-M</strong>：递归提取，需要跟-e或-D配合（比如-Me）<h4 id="Winhex"><a href="#Winhex" class="headerlink" title="Winhex"></a>Winhex</h4>十六进制文件编辑器，常用于检查和修复文件、数据恢 复、数据取证等<h4 id="Stegsolve"><a href="#Stegsolve" class="headerlink" title="Stegsolve"></a>Stegsolve</h4>图片通道查看器<br>Analyse下拉菜单：<br>FileFormat：查看文件格式和参数信息，有时候flag会写在图片信息里<br>Data Extract：数据提取，如LSB隐写等在这个选项中提取信息<br>Stereogram solver：立体视图，可以左右移动控制偏移量<br>Frame Broswer：逐帧浏览，如查看快速闪过的GIF图中的flag<br>Image Combiner：图片结合，可以对两张图片做xor、add、sub等运算</li>
</ul>
</li>
</ul>
<h4 id="StegDetect"><a href="#StegDetect" class="headerlink" title="StegDetect"></a>StegDetect</h4><p>（CTF比赛中的典型隐写分析工具）</p>
<p>数字图像隐写分析工具，主要针对JPEG<br>-q：仅显示可能包含隐藏内容的图像<br>-t：设置要检测哪些隐写算法，支持如下选项：<br>-j：检测图像中的信息是否是用jsteg嵌入的<br>-o：检测图像中的信息是否是用outguess嵌入的<br>-p：检测图像中的信息是否是用gphide嵌入的<br>-i：检测图像中的信息是否是用invisible seecrets嵌入的<br>-s：设置敏感度</p>

    </div>

    
    
    

      <footer class="post-footer">

        


        
    <div class="post-nav">
      <div class="post-nav-item">
    <a href="/2020/02/17/find%E6%8C%87%E4%BB%A4/" rel="prev" title="find指令">
      <i class="fa fa-chevron-left"></i> find指令
    </a></div>
      <div class="post-nav-item">
    <a href="/2020/02/19/%E5%B8%B8%E8%A7%81%E6%96%87%E4%BB%B6%E6%A0%BC%E5%BC%8F%E5%88%86%E6%9E%90/" rel="next" title="常见文件格式分析">
      常见文件格式分析 <i class="fa fa-chevron-right"></i>
    </a></div>
    </div>
      </footer>
    
  </article>
  
  
  

  </div>


          </div>
          

<script>
  window.addEventListener('tabs:register', () => {
    let activeClass = CONFIG.comments.activeClass;
    if (CONFIG.comments.storage) {
      activeClass = localStorage.getItem('comments_active') || activeClass;
    }
    if (activeClass) {
      let activeTab = document.querySelector(`a[href="#comment-${activeClass}"]`);
      if (activeTab) {
        activeTab.click();
      }
    }
  });
  if (CONFIG.comments.storage) {
    window.addEventListener('tabs:click', event => {
      if (!event.target.matches('.tabs-comment .tab-content .tab-pane')) return;
      let commentClass = event.target.classList[1];
      localStorage.setItem('comments_active', commentClass);
    });
  }
</script>

        </div>
          
  
  <div class="toggle sidebar-toggle">
    <span class="toggle-line toggle-line-first"></span>
    <span class="toggle-line toggle-line-middle"></span>
    <span class="toggle-line toggle-line-last"></span>
  </div>

  <aside class="sidebar">
    <div class="sidebar-inner">

      <ul class="sidebar-nav motion-element">
        <li class="sidebar-nav-toc">
          文章目录
        </li>
        <li class="sidebar-nav-overview">
          站点概览
        </li>
      </ul>

      <!--noindex-->
      <div class="post-toc-wrap sidebar-panel">
          <div class="post-toc motion-element"><ol class="nav"><li class="nav-item nav-level-1"><a class="nav-link" href="#隐写术"><span class="nav-number">1.</span> <span class="nav-text">隐写术</span></a><ol class="nav-child"><li class="nav-item nav-level-2"><a class="nav-link" href="#信息隐藏技术："><span class="nav-number">1.1.</span> <span class="nav-text">信息隐藏技术：</span></a></li><li class="nav-item nav-level-2"><a class="nav-link" href="#隐写术应用场景"><span class="nav-number">1.2.</span> <span class="nav-text">隐写术应用场景</span></a></li><li class="nav-item nav-level-2"><a class="nav-link" href="#密码学与隐写术"><span class="nav-number">1.3.</span> <span class="nav-text">密码学与隐写术</span></a></li><li class="nav-item nav-level-2"><a class="nav-link" href="#评价隐写术的标准"><span class="nav-number">1.4.</span> <span class="nav-text">评价隐写术的标准</span></a></li><li class="nav-item nav-level-2"><a class="nav-link" href="#隐写术分类"><span class="nav-number">1.5.</span> <span class="nav-text">隐写术分类</span></a></li><li class="nav-item nav-level-2"><a class="nav-link" href="#CTF竞赛中的隐写术概述"><span class="nav-number">1.6.</span> <span class="nav-text">CTF竞赛中的隐写术概述</span></a><ol class="nav-child"><li class="nav-item nav-level-3"><a class="nav-link" href="#CTF比赛中的典型隐写分析工具"><span class="nav-number">1.6.1.</span> <span class="nav-text">CTF比赛中的典型隐写分析工具</span></a><ol class="nav-child"><li class="nav-item nav-level-4"><a class="nav-link" href="#Binwalk"><span class="nav-number">1.6.1.1.</span> <span class="nav-text">Binwalk</span></a></li><li class="nav-item nav-level-4"><a class="nav-link" href="#Winhex"><span class="nav-number">1.6.1.2.</span> <span class="nav-text">Winhex</span></a></li><li class="nav-item nav-level-4"><a class="nav-link" href="#Stegsolve"><span class="nav-number">1.6.1.3.</span> <span class="nav-text">Stegsolve</span></a></li><li class="nav-item nav-level-4"><a class="nav-link" href="#StegDetect"><span class="nav-number">1.6.1.4.</span> <span class="nav-text">StegDetect</span></a></li></ol></li></ol></li></ol></li></ol></div>
      </div>
      <!--/noindex-->

      <div class="site-overview-wrap sidebar-panel">
        <div class="site-author motion-element" itemprop="author" itemscope itemtype="http://schema.org/Person">
  <p class="site-author-name" itemprop="name">YQ Cong</p>
  <div class="site-description" itemprop="description"></div>
</div>
<div class="site-state-wrap motion-element">
  <nav class="site-state">
      <div class="site-state-item site-state-posts">
          <a href="/archives/">
        
          <span class="site-state-item-count">13</span>
          <span class="site-state-item-name">日志</span>
        </a>
      </div>
  </nav>
</div>



      </div>

    </div>
  </aside>
  <div id="sidebar-dimmer"></div>


      </div>
    </main>

    <footer class="footer">
      <div class="footer-inner">
        

<div class="copyright">
  
  &copy; 
  <span itemprop="copyrightYear">2020</span>
  <span class="with-love">
    <i class="fa fa-user"></i>
  </span>
  <span class="author" itemprop="copyrightHolder">YQ Cong</span>
</div>
  <div class="powered-by">由 <a href="https://hexo.io/" class="theme-link" rel="noopener" target="_blank">Hexo</a> 强力驱动 v4.2.0
  </div>
  <span class="post-meta-divider">|</span>
  <div class="theme-info">主题 – <a href="https://muse.theme-next.org/" class="theme-link" rel="noopener" target="_blank">NexT.Muse</a> v7.7.1
  </div>

        








      </div>
    </footer>
  </div>

  
  
  <script color='0,0,255' opacity='0.5' zIndex='-1' count='99' src="/lib/canvas-nest/canvas-nest.min.js"></script>
  <script src="/lib/anime.min.js"></script>
  <script src="/lib/velocity/velocity.min.js"></script>
  <script src="/lib/velocity/velocity.ui.min.js"></script>

<script src="/js/utils.js"></script>

<script src="/js/motion.js"></script>


<script src="/js/schemes/muse.js"></script>


<script src="/js/next-boot.js"></script>




  















  

  

</body>
</html>
